This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/ZKAezM1wt6o2ucY905tilGtFYTU.roa File: ZKAezM1wt6o2ucY905tilGtFYTU.roa (raw, json) Hash identifier: NB6PhMBOoc0W/ExwZIy5Q45MDGfZSLZz34tFYMQGlN8= Subject key identifier: 64:A0:1E:CC:CD:70:B7:AA:36:B9:C6:3D:D3:9B:62:94:6B:45:61:35 Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db Certificate serial: 019B791085792931623B7305A43264C11CCB Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/ZKAezM1wt6o2ucY905tilGtFYTU.roa Signing time: Thu 01 Jan 2026 10:18:04 +0000 ROA not before: Thu 01 Jan 2026 10:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34549 IP address blocks: 195.179.44.0/22 maxlen: 22 195.179.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.mft rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 12:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:85:79:29:31:62:3b:73:05:a4:32:64:c1:1c:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db Validity Not Before: Jan 1 10:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64a01ecccd70b7aa36b9c63dd39b62946b456135 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:aa:15:bf:1d:0b:57:70:94:db:5b:5a:f3:a5: 78:2a:6a:3b:05:00:b9:81:3b:71:b9:c3:43:0a:f0: 35:e4:44:b1:e0:e0:5e:99:30:af:6f:18:20:ee:a6: eb:97:b7:72:02:e0:72:16:08:18:cc:7d:ff:a0:0d: 95:9c:d5:6d:46:1b:fa:60:6e:08:d0:88:37:68:57: 61:e6:31:27:2a:76:0c:63:b0:1b:59:26:f4:39:9b: ab:27:13:60:6e:62:67:51:2d:ce:e9:ea:29:4e:26: 76:a4:d8:19:41:ec:3e:23:31:98:91:6d:d7:53:d0: a7:d0:9a:00:64:ab:9c:47:71:a1:e7:53:67:cd:8f: 5f:74:ae:a8:89:f8:a0:9e:7e:10:53:a2:e9:8d:e8: 7f:6e:53:5e:bb:9a:00:66:b4:3d:b4:6e:6d:37:1f: 2b:36:6f:27:17:87:23:56:6f:04:5d:88:9c:f6:11: 43:7d:67:92:a3:01:ee:d6:dd:80:30:22:09:72:7d: c9:eb:cd:00:4a:6d:47:be:1c:07:a7:49:52:0e:e1: ed:74:3e:99:34:d1:70:38:53:a9:64:63:4b:b7:ef: ae:5d:65:e5:5e:2d:9b:c7:72:bb:a9:90:74:c2:8d: 6c:72:96:47:16:15:6a:c7:05:64:4a:a4:58:af:9e: 22:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A0:1E:CC:CD:70:B7:AA:36:B9:C6:3D:D3:9B:62:94:6B:45:61:35 X509v3 Authority Key Identifier: keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/ZKAezM1wt6o2ucY905tilGtFYTU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.179.44.0/22 195.179.80.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:69:9c:d2:33:30:1f:fa:e5:2c:32:8c:2f:50:e1:89:9d:28: ec:52:6e:a9:1e:e9:c4:9e:c4:cc:83:09:d4:e8:ec:8d:54:e5: 43:0b:50:55:24:9f:27:4d:71:b6:53:5b:a5:01:ab:de:40:ea: de:9a:53:8b:e0:55:c6:29:67:e1:97:ef:93:3e:44:05:76:e6: 4f:f0:d9:eb:7c:2d:d2:9e:a2:ea:c4:b4:50:67:64:52:83:01: 4f:a5:28:59:02:97:7f:08:11:60:05:02:e5:e3:ca:5f:23:f5: e5:53:12:e3:48:c1:10:f2:9d:5a:cb:fd:4f:55:eb:ee:1c:89: 37:4e:18:13:90:78:db:cd:d7:06:c7:a7:6b:30:59:8d:4f:5f: fc:ca:63:f1:6d:08:b2:aa:03:c6:ca:f5:5e:aa:f2:fe:d3:d3: c8:c2:00:e9:01:65:14:95:1e:fa:06:7e:65:d3:bc:00:0c:35: 1f:8b:f7:9b:0f:d9:69:c7:00:d8:88:5a:df:75:82:5e:a5:ab: 26:3b:9e:37:05:aa:db:67:0a:bf:58:94:e0:f2:eb:ca:03:8a: 69:5b:16:54:9e:18:df:d9:e5:4a:7e:8c:01:46:dc:99:4d:70: 5e:0a:49:8d:f5:a3:69:6d:49:f5:81:19:ca:ae:2d:2d:6e:5d: 95:19:90:65 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EIV5KTFiO3MFpDJkwRzLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NDcwMTc1NjRjNzExYmNiZDU3NjgwYTBkZmQwMGYyYTVk MDk5ZGIwHhcNMjYwMTAxMTAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NGEwMWVjY2NkNzBiN2FhMzZiOWM2M2RkMzliNjI5NDZiNDU2MTM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqoVvx0LV3CU21ta86V4Kmo7BQC5 gTtxucNDCvA15ESx4OBemTCvbxgg7qbrl7dyAuByFggYzH3/oA2VnNVtRhv6YG4I 0Ig3aFdh5jEnKnYMY7AbWSb0OZurJxNgbmJnUS3O6eopTiZ2pNgZQew+IzGYkW3X U9Cn0JoAZKucR3Gh51NnzY9fdK6oifignn4QU6Lpjeh/blNeu5oAZrQ9tG5tNx8r Nm8nF4cjVm8EXYic9hFDfWeSowHu1t2AMCIJcn3J680ASm1HvhwHp0lSDuHtdD6Z NNFwOFOpZGNLt++uXWXlXi2bx3K7qZB0wo1scpZHFhVqxwVkSqRYr54i9wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGSgHszNcLeqNrnGPdObYpRrRWE1MB8GA1UdIwQY MBaAFNdHAXVkxxG8vVdoCg39APKl0JnbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjIt NGYwZThjZTExYTdkLzEvWktBZXpNMXd0Nm8ydWNZOTA1dGlsR3RGWVRVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjItNGYwZThjZTExYTdk LzEvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCw7MsAwQC w7NQMA0GCSqGSIb3DQEBCwUAA4IBAQBqaZzSMzAf+uUsMowvUOGJnSjsUm6pHunE nsTMgwnU6OyNVOVDC1BVJJ8nTXG2U1ulAaveQOremlOL4FXGKWfhl++TPkQFduZP 8NnrfC3SnqLqxLRQZ2RSgwFPpShZApd/CBFgBQLl48pfI/XlUxLjSMEQ8p1ay/1P VevuHIk3ThgTkHjbzdcGx6drMFmNT1/8ymPxbQiyqgPGyvVeqvL+09PIwgDpAWUU lR76Bn5l07wADDUfi/ebD9lpxwDYiFrfdYJepasmO543BarbZwq/WJTg8uvKA4pp WxZUnhjf2eVKfowBRtyZTXBeCkmN9aNpbUn1gRnKri0tbl2VGZBl -----END CERTIFICATE-----Generated at Wed Jan 21 18:43:37 2026 by rpki-client